Microsoft Windows 10
Moderate fix4 remedies
cpe:2.3:o:microsoft:windows_10:*:*:*:*:*:*:*
Moderate fix4 remedies
Microsoft Windows UPnP Device Host Privilege Escalation Vulnerability
Vulnerability
Patched
A vulnerability allowing untrusted pointer dereference has been identified in the Windows Universal Plug and Play (UPnP) Device Host. This flaw enables an authorized attacker to locally elevate privileges. The vulnerability affects multiple Windows versions, including various editions of Windows 10, Windows 11, Windows Server 2012, and Windows Server 2016.
Impact
Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing an attacker to gain administrator rights.
Remediation
Users can apply the security updates provided by Microsoft to address this vulnerability. These security updates can be downloaded via the Microsoft Update Catalog. Specific update details can be found in the Microsoft Knowledge Base articles linked in the 'Security Updates' section.
Added: Apr 14, 2026, 10:04 PM
Updated: Apr 14, 2026, 10:04 PM
Vulnerability Rating
Custom Algorithm
spread
8.4impact
7.5exploitability
3.3remediation
7.7relevance
5.9threat
0.0urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.